kde

206 tracked vulnerabilities.

CVE-2026-25710 HIGH
KDE plasma-login-manager - Privilege Escalation via plasmaloginauthhelper D-Bus Helper
May 13, 2026
EPSS 0.00
CVE-2026-45184 MEDIUM
Kdenlive < 26.04.1 - Inclusion of Functionality from Untrusted Control Sphere via Proxy Parameters
May 09, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-41526 MEDIUM
KDE KCoreAddons <6.25 - Command Injection
Apr 28, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-41525 MEDIUM
KDE Dolphin <25.12.3 - Path Traversal
Apr 28, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-42095 MEDIUM
KDE Arianna <26.04.1 - Info Disclosure
Apr 24, 2026
CVSS 4.0
EPSS 0.00
CVE-2026-41527 MEDIUM
KDE Kleopatra <26.08.0 - Privilege Escalation
Apr 21, 2026
CVSS 6.9
EPSS 0.00
CVE-2025-69412 LOW
KDE messagelib <25.11.90 - Info Disclosure
Jan 01, 2026
CVSS 3.4
EPSS 0.00
CVE-2025-66270 MEDIUM
KDE Connect <2025-11-28 - Info Disclosure
Dec 05, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-32900 MEDIUM
KDE Connect <2025-04-18 - Info Disclosure
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-32901 MEDIUM
KDEConnect < 1.33.0 - Denial of Service via Malicious Device ID
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-32899 MEDIUM
KDE Connect < 1.33.0 - Unauthenticated Device Unpairing via Broadcast UDP Discovery Packet
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-32898 MEDIUM
KDE Connect <2025-04-18 - Info Disclosure
Dec 05, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-59820 MEDIUM
KDE Krita <5.2.13 - Buffer Overflow
Nov 26, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-55174 LOW
KDE Skanpage <25.08.0 - Info Disclosure
Nov 26, 2025
CVSS 3.2
EPSS 0.00
CVE-2025-49091 HIGH
KDE Konsole < 25.04.2 - Remote Code Execution via URL Scheme Handler Fallback
Jun 11, 2025
CVSS 8.2
EPSS 0.01
CVE-2024-57966 MEDIUM
KDE ark < 24.12.0 - Absolute Path Traversal via Archive Extraction
Feb 03, 2025
CVSS 5.0
EPSS 0.00
CVE-2024-36041 HIGH
KSmserver <5.27.11.1-6.0.5.1 - Privilege Escalation
Jul 05, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-1433 LOW
KDE Plasma Workspace < 5.93.0 - Path Traversal in Theme File Handler
Feb 11, 2024
CVSS 3.1
EPSS 0.00
CVE-2022-24986 HIGH
KDE KCron < 21.12.2 - Unauthorized Command Execution via Temporary File Reuse
Feb 26, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-23853 HIGH
KDE Kate <21.12.2 & KTextEditor <5.91.0 - Path Traversal
Feb 11, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-38373 MEDIUM
KDE KMail <19.12.3 - Info Disclosure
Aug 10, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-38372 LOW
KDE Trojita 0.7 - Man-in-the-Middle Folder Creation via Untagged IMAP Responses
Aug 10, 2021
CVSS 3.7
EPSS 0.00
CVE-2021-36083 MEDIUM
KDE KImageFormats <5.81.0 - Buffer Overflow
Jul 01, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-31855 MEDIUM
KDE Messagelib < 5.17.0 - Cleartext Storage of Sensitive Information via Attachment Deletion
Jun 02, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-28117 HIGH
KDE Discover < 5.21.3 - Automatic Link Creation to Dangerous URLs
Mar 20, 2021
CVSS 7.5
EPSS 0.01
Products
kde 66 konqueror 33 kde_sc 10 kmail 10 koffice 9 kdelibs 8 kpdf 8 plasma-workspace 7 kdegraphics 6 ark 5 k-mail 5 kde-workspace 4 konqueror_embedded 4 kauth 3 kde_applications 3 kword 3 messagelib 3 KDEConnect 2 kio-extras 2 kmplayer 2 ktexteditor 2 kvt 2 okular 2 paste_applet 2 trojita 2 Arianna 1 Dolphin 1 KCoreAddons 1 KDE Connect information-exchange protocol 1 KDE Connect protocol 1
Quick Filters
Critical CVEs With Exploits In CISA KEV